29 matches found
FreeBSD : quagga -- multiple vulnerabilities (42a2c82a-75b9-11e1-89b4-001ec9578670)
CERT reports : The ospfd implementation of OSPF in Quagga allows a remote attacker on a local network segment with OSPF enabled to cause a denial of service daemon aborts due to an assert with a malformed OSPF LS-Update message. The ospfd implementation of OSPF in Quagga allows a remote attacker ...
SuSE 10 Security Update : quagga (ZYPP Patch Number 7768)
This update fixes the following security issues : - 718056: OSPF6D buffer overflow while decoding Link State Update with Inter Area Prefix Lsa. CVE-2011-3323 - 718058: OSPF6D DoS while decoding Database Description packet. CVE-2011-3324 - 718059: OSPFD DoS while decoding Hello packet. CVE-2011-33...
SuSE 11.1 Security Update : quagga (SAT Patch Number 5169)
This update fixes the following security issues : - 718056: OSPF6D buffer overflow while decoding Link State Update with Inter Area Prefix Lsa. CVE-2011-3323 - 718058: OSPF6D DoS while decoding Database Description packet. CVE-2011-3324 - 718059: OSPFD DoS while decoding Hello packet. CVE-2011-33...
CVE-2011-3325
ospfpacket.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via 1 a 0x0a type field in an IPv4 packet header or 2 a truncated IPv4 Hello packet...
Design/Logic Flaw
ospfpacket.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via 1 a 0x0a type field in an IPv4 packet header or 2 a truncated IPv4 Hello packet...
Design/Logic Flaw
The ospfflood function in ospfflood.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via an invalid Link State Advertisement LSA type in an IPv4 Link State Update message...
CVE-2011-3326
Removed by vendor...
CVE-2011-3325
Removed by vendor...
CVE-2011-3325
ospfpacket.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash via 1 a 0x0a type field in an IPv4 packet header or 2 a truncated IPv4 Hello packet...